AWS does not access, disclose or use customer content, including personal content, stored or processed in the AWS cloud. The customer is in control of that. This might explain why the AWS terms exclude liability for data loss.
But Amazon’s WorkMail and WorkDocs suites change that. Amazon have ISO certifications already and they want to be seen as being active in this space in helping to protect data so, presumably next stop is the new ISO27018 code of practice for the “protection of personally identifiable information (PII) in public clouds acting as PII processors”.? Microsoft has it already.
What do you think? Go visit the full article with views from me and others: AWS urged to follow Azure on cloud data privacy.
UPDATE: AWS now has this data protection page on its website which states “The Article 29 Working Party has approved the AWS Data Processing Agreement which includes the Model Clauses.” Progress.
Image courtesy of Stuart Milesat at FreeDigitalPhotos.net